Hi,
I want to know where is most desirable location to put the login page when SSL is required. I can put ~/login.aspx in the root directory and check "require secure chancel(SSL)" in IIS just for file login.aspx. In this article, http://msdn.microsoft.com/en-us/library/ms998310.aspx#paght000012_additionalconsiderations, it suggests putting the login.aspx under a subdirectory eg /secure/login.aspx I wonder whether the location of the login.aspx matters. What is common practice to protect the login and signup pages.